The LDAP connector enables searching and reading identity information from an LDAP directory, such as Active Directory. User authentication with directory-stored password and group-based role assignment are also supported.
Alternatively, Identity Manager can connect to different HR systems, typically via CSV file import/export.
Through the PKI connectors, Identity Manager PKI applications can request, renew, and revoke certificates from/in a certificate authority (CA). The PKI connector delivers the certificate template names that are made available by the CA for use. These templates are mapped to Identity Manager certificate types. Multiple CA connections are possible.
Smart cards and software tokens can contain any number of certificates that may be issued by different CAs.
Physical access control systems (PACS)
Through PACS connectors, it is possible to read access profile information from the PACS as well as to provision and de-provision ID cards and entitlements (profile assignment) in PACS systems. The PACS connector may be based on CSV file (asynchronous) or WebServices (synchronous) interfaces.
Identity Manager DB Server
All configuration and run time data is stored in an SQL database.